Hey Guys, I have accepted the fact that setting the Session.security = 'high' will regenerate session id on each request.
However, when I set the Session.security = 'medium' it actually sets the session Cookie to expire in the future. This to me is a big security problem. Is there anyway to have the best of both worlds? I don't want my sessions to regenerate on each request but I'd like the Cookie itself to expire when the browser closes. I have a lot of ajax in my applications and the regenerate method just isn't working for me, too many impatient people are losing their session data. Thanks in advance --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to cake-php@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---